|
Scanners
nmap nmap is a utility for port scanning large networks, although it works fine for single hosts. The guiding philosophy for the creation of nmap was TMTOWTDI (There's More Than One Way To Do It). This is the Perl slogan, but it is equally applicable to scanners. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). You just can't do all this with one scanning mode. And you don't want to have 10 different scanners around, all with different interfaces and capabilities.
firewalk Firewalk is a network auditing tool that attempts to determine what transport protocols a given gateway will pass. Firewalk works by sending out TCP or UDP packets with a TTL one greater then the targeted gateway. If the gateway allows the traffic, it will forward the packets to the next hop where they will expire and elicit an ICMP_TIME_EXCEEDED message. If the gateway host does not allow the traffic, it will likely drop the packets on the floor and we will see no response.
nbtscan
NBTscan is a program for scanning IP networks for NetBIOS name information. It sends
NetBIOS status query to each address in supplied range and lists received information in human readable form. For each responded host it lists IP address, NetBIOS computer name, logged-in user name and MAC address.
strobe Strobe is a network/security tool that locates and describes all listening tcp ports on a (remote) host or on many hosts in a bandwidth utilisation maximising, and pro-cess resource minimizing manner.
IP.id scan Scanner does not directly contact the target host and is therefore practically untracable.
Netcop 2.0 Windows Port Scanner.
ipscanmaster.zip Windows based port scanner, multithreaded.
iptools2000.zip Windows based port scanner with extra tools.
scanner.zip Windows based port scanner with source.
ADMgates-v0_2.tgz ADM Linux-based Wingate scanner, scan entire zones
ADMscan3.tgz Utility to ping hosts in order to map networks
ADMsnmp-01.tgz ADM's SNMP scanner
Allhosts.c Mass DNS Query
dnsscan.sh Mass DNS query tool to generate host listings for domains/networks
domainscan.c Utility to mass-resolve IP addresses in class B or C networks
ftpcheck.pl Perl script to scan class-c networks for machines running FTP
ftpscan.c FTP-bounce portscanner
halfscan.c Half opened connection portscanner
hping070-lin.tgz hping v0.70 for Linux, tool for testing packet filters
hping070-sol.tgz hping v0.70 for Solaris, tool for testing packet filters
ident-scan.c TCP portscanner that uses identd querying
Identscan Can be useful to determine who is running daemons on high ports that can be security risks.
imapd_scan.sh Shellscript to exploit entire networks using the Linux IMAP vulnerability
java-cgi-scan.tgz Java CGI vulnerability scanner
mns-v_80beta.tgz Multifuctional Network Scanner for Linux Version 0.80beta
mns-v_90beta.tgz Multifuctional Network Scanner for Linux Version 0.90beta
mountdscan.c rpc.mountd scanner
mscan.tgz Network scanner, checks for various default security problems
mtutest.c Tool to check packet filters
newscan.c Half opened connection portscanner
phobia.tgz Utility to scan networks for various Unix holes
probe.c Simple TCP portscanner
OS detection/fingerprint
queso Remote O.S. detector. Sends obscure TCP pkts to determine remote OS. Fully configurable. Runs on Linux, Solaris and probably any OS with libpcap support
siphon-v.666.tar Siphon is a passive OS fingerprinter which sniffs network traffic passing the local machine and uses characteristics of the TCP stream to identify the operating system running on the
endpoints.
Winfingerprint Winfingerprint 2 is a console based Win32 discovery tool. Winfingerprint DOES NOT run under Windows 9x. Some of the APIs used that allow winfingerprint to gather information are not available in the 9x platform. Winfingerprint will also produce strange results when it queries a samba server. Winfingerprint is written in VC++ 6, currently in the process of being developed.
| 
